Selective Breakout to Edge
Selective Breakout to Internet
Network Monitoring and
Insespection
Network interface
Uplink: S1U/GTP-U, S1AP, NGAP
Downlink: S1U/GTP-U, S1AP, NGAP
Edge: User-Plane Plane of breakout w/o GTP header
Accounting: Duplicated RADIUS accounting input
LI: X1(IMSI list), X2(Netflow), X3(User Traffic)
Mgt [protocol for mgt] HTTPS/sFTP/SNMP [user behavior] NetFlow, Syslog(Alert, IoC event etc..)
User Plane Mirror: User Plane mirror, w/o GTP header
Uplink<->Downlink Hardware Bypass
Bypass mode On: power-off or APIs Off: system reload or APIs
Service type
Intranet Breakout
Change the data path of a subscriber session to the enterprise intranet through edge when the session is of subscriber IPs to private IPs
Selective Internet Breakout
For some subscribers, they can access Internet through edge without through the backhaul.
Mobile Security Inspection
Remove the GTP-U header of User Plane traffic and route to the network security device (for example, IPS/IDS)
Operational assistance
Operator traffic monitoring and service billing(packet volume/IMSI) usage User-Plane Enhanced NetFlow with IMSI User-Plane DNS log /SSL log
With PacketX Mediation Device(Optional) Import target IMSI/IP Enhanced NetFlow(with IMSI) for target Target traffic encapsulated & Local PCAP recording
In-GTP Network security and access control
Destination IP white list
100K/200K/500K
Destination IP black list
300K/2M/5M
Destination Domain black list
300K/2M/5M
User authority mechanism
Import user ID list
IMSI or Subscriber IP
Enable MEC after users in the list connect to the Network
With accounting information RADIUS duplicate or mirror GTP-C mirror